$ rpki-client -vvf repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/3130332e3134312e32302e302f32342d3234203d3e20313338383837.roa File: 3130332e3134312e32302e302f32342d3234203d3e20313338383837.roa (raw, json) Hash identifier: K7yU5KBAIp/EKRVVMzN4hP5M0J01mgu/ag5kAqXJFsI= Subject key identifier: E2:A6:DE:21:9F:1E:3A:BD:87:E5:CD:A2:A8:3B:6B:E5:60:3D:CD:C3 Certificate issuer: /CN=80F9ED59290AD77DE2856ECFD8340E28FF858E3D Certificate serial: 74C6360080FAFE558AD4E699111DF6FEE6F5F7FE Authority key identifier: 80:F9:ED:59:29:0A:D7:7D:E2:85:6E:CF:D8:34:0E:28:FF:85:8E:3D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/3130332e3134312e32302e302f32342d3234203d3e20313338383837.roa Signing time: Mon 01 Jul 2024 01:03:41 +0000 ROA not before: Mon 01 Jul 2024 00:58:41 +0000 ROA not after: Mon 30 Jun 2025 01:03:41 +0000 asID: 138887 IP address blocks: 103.141.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.crl rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:c6:36:00:80:fa:fe:55:8a:d4:e6:99:11:1d:f6:fe:e6:f5:f7:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=80F9ED59290AD77DE2856ECFD8340E28FF858E3D Validity Not Before: Jul 1 00:58:41 2024 GMT Not After : Jun 30 01:03:41 2025 GMT Subject: CN=E2A6DE219F1E3ABD87E5CDA2A83B6BE5603DCDC3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:0c:6a:59:10:fe:d8:09:f9:9e:a2:0c:95:ae: 4e:73:69:8c:53:80:04:9a:d7:d8:a5:d8:9a:bc:77: d5:81:ce:5b:c3:72:93:6b:8e:27:86:7b:dd:ff:24: 03:41:64:b7:f1:a0:2c:44:ce:ee:21:a2:64:b6:39: 82:77:db:50:45:cb:88:1e:74:a1:dd:27:7f:b4:58: d0:f0:fb:ba:6d:96:33:bd:b7:48:3b:82:ce:90:15: f6:6e:1d:d1:5e:d6:64:6c:3e:a8:b9:af:3a:00:62: 17:65:86:2a:06:ef:fd:4e:8a:9b:6c:8c:e7:66:16: 4f:da:15:7f:43:b9:e2:71:db:98:e1:05:db:5a:87: 7f:72:72:6c:af:03:d8:41:c4:8e:1c:ca:73:91:81: 97:b0:92:f7:4e:ec:f2:0c:c4:95:8f:cc:e8:2e:2c: fc:69:a8:5a:02:42:d2:a1:a7:8d:5d:0c:11:19:c1: 01:b3:62:b6:1d:50:df:78:05:59:d8:f0:4b:9b:23: 9f:74:9a:4c:63:25:a5:31:ba:a6:7b:63:55:b8:67: 19:b8:07:0d:88:97:77:65:99:14:73:d6:9e:6e:d0: 56:f8:96:a5:a7:c2:1f:29:a2:01:ff:62:60:a5:6b: 2f:a2:eb:b5:b0:60:2e:e8:de:65:84:5a:c8:62:7a: a4:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:A6:DE:21:9F:1E:3A:BD:87:E5:CD:A2:A8:3B:6B:E5:60:3D:CD:C3 X509v3 Authority Key Identifier: keyid:80:F9:ED:59:29:0A:D7:7D:E2:85:6E:CF:D8:34:0E:28:FF:85:8E:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/3130332e3134312e32302e302f32342d3234203d3e20313338383837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.141.20.0/24 Signature Algorithm: sha256WithRSAEncryption 11:b8:c3:91:4d:ed:3d:80:34:e7:de:81:f5:13:0a:91:bf:13: 3a:d3:a1:53:fd:ce:86:f0:ad:20:fe:ab:e3:50:47:a5:d5:f0: 8f:e6:04:4d:b3:aa:c6:f6:84:2b:ab:00:05:ac:90:a6:f3:c5: 5b:a1:a7:87:80:c2:4d:c5:72:09:a9:de:33:f2:fb:a4:17:43: a0:5d:a0:a1:04:86:45:16:0c:7c:62:5c:c2:af:84:b9:c2:7e: 99:05:f3:fd:ed:be:9a:5b:f1:47:1a:df:37:f4:2b:02:02:c8: 7d:df:ed:ea:a4:ed:7b:16:34:cf:12:bb:86:79:89:d4:45:2d: b0:c2:b3:7e:a5:9d:8f:cc:30:c6:c7:86:b4:e8:f0:0e:a6:9b: df:12:e2:b2:1d:db:d3:49:41:f6:4a:2d:20:50:92:d3:f7:e2: cf:f0:d9:09:0a:8d:85:d5:e6:f7:87:38:64:1e:dd:d1:8d:c1: 71:56:b3:34:18:e0:a4:20:99:f3:fd:e3:59:2a:65:cb:cb:96: 64:11:24:b5:69:e6:90:80:1d:c6:28:66:02:d1:9c:ce:4c:33: 10:e9:5f:8d:8c:cb:bf:dc:c7:25:fd:a2:42:dd:9c:b1:30:0e: 73:4c:9a:35:35:c9:5d:f4:5e:44:24:0a:2f:e1:6e:8e:bd:d9: cd:b0:31:a0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdMY2AID6/lWK1OaZER32/ub19/4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODBGOUVENTkyOTBBRDc3REUyODU2RUNGRDgzNDBFMjhG Rjg1OEUzRDAeFw0yNDA3MDEwMDU4NDFaFw0yNTA2MzAwMTAzNDFaMDMxMTAvBgNV BAMTKEUyQTZERTIxOUYxRTNBQkQ4N0U1Q0RBMkE4M0I2QkU1NjAzRENEQzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtDGpZEP7YCfmeogyVrk5zaYxT gASa19il2Jq8d9WBzlvDcpNrjieGe93/JANBZLfxoCxEzu4homS2OYJ321BFy4ge dKHdJ3+0WNDw+7ptljO9t0g7gs6QFfZuHdFe1mRsPqi5rzoAYhdlhioG7/1Oipts jOdmFk/aFX9DueJx25jhBdtah39ycmyvA9hBxI4cynORgZewkvdO7PIMxJWPzOgu LPxpqFoCQtKhp41dDBEZwQGzYrYdUN94BVnY8EubI590mkxjJaUxuqZ7Y1W4Zxm4 Bw2Il3dlmRRz1p5u0Fb4lqWnwh8pogH/YmClay+i67WwYC7o3mWEWshieqRbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU4qbeIZ8eOr2H5c2iqDtr5WA9zcMwHwYDVR0j BBgwFoAUgPntWSkK133ihW7P2DQOKP+Fjj0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MDdjODhkYS0yYjU2LTQ4N2UtOWVmZS01NzExNzBiMTAyODYvMC84MEY5RUQ1OTI5 MEFENzdERTI4NTZFQ0ZEODM0MEUyOEZGODU4RTNELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODBGOUVENTkyOTBBRDc3REUyODU2RUNGRDgzNDBFMjhGRjg1 OEUzRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MwN2M4OGRhLTJiNTYtNDg3ZS05 ZWZlLTU3MTE3MGIxMDI4Ni8wLzMxMzAzMzJlMzEzNDMxMmUzMjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ40UMA0GCSqG SIb3DQEBCwUAA4IBAQARuMORTe09gDTn3oH1EwqRvxM606FT/c6G8K0g/qvjUEel 1fCP5gRNs6rG9oQrqwAFrJCm88VboaeHgMJNxXIJqd4z8vukF0OgXaChBIZFFgx8 YlzCr4S5wn6ZBfP97b6aW/FHGt839CsCAsh93+3qpO17FjTPEruGeYnURS2wwrN+ pZ2PzDDGx4a06PAOppvfEuKyHdvTSUH2Si0gUJLT9+LP8NkJCo2F1eb3hzhkHt3R jcFxVrM0GOCkIJnz/eNZKmXLy5ZkESS1aeaQgB3GKGYC0ZzOTDMQ6V+NjMu/3Mcl /aJC3ZyxMA5zTJo1Ncld9F5EJAov4W6OvdnNsDGg -----END CERTIFICATE-----Generated at Wed Nov 20 23:52:20 2024 by rpki-client on console-ams.rpki-client.org